Security through layers in an intelligent electronic device
First Claim
1. An intelligent electronic device (IED) comprising:
- at least one sensor coupled to at least one power line of an electrical power distribution system and configured for measuring at least one power parameter of the at least one power line and generating at least one analog signal indicative of the at least one power parameter;
at least one analog to digital converter coupled to the at least one sensor configured for receiving the at least one analog signal and converting the at least one analog signal to at least one digital signal;
at least one first processor configured for executing at least one application, the at least one application requiring a security key, the security key including at least one component with each of the at least one component being stored in a different location, the security key being generated by iteratively encrypting a key with the at least one component, wherein at least one of the at least one component is changed after a predetermined period of time;
at least one second processor in communication with the at least one first processor, the at least one second processor configured to receive a message from the at least one first processor, retrieve the security key from at least one location, decrypt the message and return the decrypted message to the at least one first processor, anda storage device that stores measured and calculated data, wherein the message is a request for access to data stored in the storage device,wherein the message includes a payload key to be decrypted by the security key and the returned decrypted message includes a decrypted payload key to decrypt the at least one application in the at least one first processor.
2 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure provides for improving security in a meter or an intelligent electronic device (IED) through the use of a security key which is unique to each meter or IED. Such a key may be used to prevent password reuse among multiple meters. Such a key may also be used to encrypt critical components of the software, such that only when running on the correct meter can the components of the software be decrypted. Such a key may also be used to uniquely identify the device in a larger data collection and management system. The security key can also be used to prevent the direct copying of meters. The present disclosure also provides for a meter or IED that stores functional software separately from core software.
-
Citations
23 Claims
-
1. An intelligent electronic device (IED) comprising:
-
at least one sensor coupled to at least one power line of an electrical power distribution system and configured for measuring at least one power parameter of the at least one power line and generating at least one analog signal indicative of the at least one power parameter; at least one analog to digital converter coupled to the at least one sensor configured for receiving the at least one analog signal and converting the at least one analog signal to at least one digital signal; at least one first processor configured for executing at least one application, the at least one application requiring a security key, the security key including at least one component with each of the at least one component being stored in a different location, the security key being generated by iteratively encrypting a key with the at least one component, wherein at least one of the at least one component is changed after a predetermined period of time; at least one second processor in communication with the at least one first processor, the at least one second processor configured to receive a message from the at least one first processor, retrieve the security key from at least one location, decrypt the message and return the decrypted message to the at least one first processor, and a storage device that stores measured and calculated data, wherein the message is a request for access to data stored in the storage device, wherein the message includes a payload key to be decrypted by the security key and the returned decrypted message includes a decrypted payload key to decrypt the at least one application in the at least one first processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An intelligent electronic device (IED) comprising:
-
at least one sensor coupled to at least one power line of an electrical power distribution system and configured for measuring at least one power parameter of the at least one power line and generating at least one analog signal indicative of the at least one power parameter; at least one analog to digital converter coupled to the at least one sensor configured for receiving the at least one analog signal and converting the at least one analog signal to at least one digital signal; at least one first processor configured for executing at least one software application, the at least one application requiring a security key, the security key including at least one component with each of the at least one component being stored in a different location, the security key being generated by iteratively encrypting a key with the at least one component, wherein at least one of the at least one component is changed after a predetermined period of time; and at least one second processor in communication with the at least one first processor, the at least one second processor configured to receive a message from the at least one first processor, retrieve the security key from at least one location, decrypt the message and return the decrypted message to the at least one first processor, wherein the message is the at least one software application, wherein the message includes a payload key to be decrypted by the security key and the returned decrypted message includes a decrypted payload key to decrypt the at least one software application in the at least one first processor. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. An intelligent electronic device (IED) comprising:
-
at least one sensor coupled to at least one power line of an electrical power distribution system and configured for measuring at least one power parameter of the at least one power line and generating at least one analog signal indicative of the at least one power parameter; at least one analog to digital converter coupled to the at least one sensor configured for receiving the at least one analog signal and converting the at least one analog signal to digital data; and at least one processor configured for executing at least one application, the at least one application requiring a security key, the security key including at least one component with each of the at least one component being stored in a different location, the security key being generated by iteratively encrypting a key with the at least one component, wherein at least one of the at least one component is changed after a predetermined period of time; wherein the at least one processor is configured to receive a message, retrieve the security key from at least one location, decrypt the message based on the retrieved key, and wherein the message includes a payload key to be decrypted by the security key and the decrypted message includes a decrypted payload key to decrypt the at least one application. - View Dependent Claims (21, 22, 23)
-
Specification